SUSE CVE-2009-3238

The getrandomint function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to...

Oracle: Security Advisory (ELSA-2009-1106)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6636)

This update fixes a several security issues and various bugs in the SUSE Linux Enterprise 10 SP 2 kernel. The following security issues were fixed: CVE-2009-3547: A race condition during pipe open could be used by local attackers to elevate privileges. - On x8664 systems a information leak of hig...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6641)

This update fixes various bugs and some security issues in the SUSE Linux Enterprise 10 SP 3 kernel. The following security issues were fixed: CVE-2009-3238: The getrandomint function in drivers/char/random.c in the Linux kernel produces insufficiently random numbers, which allows attackers to...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6637)

This update fixes various bugs and some security issues in the SUSE Linux Enterprise 10 SP 3 kernel. The following security issues were fixed: CVE-2009-3238: The getrandomint function in drivers/char/random.c in the Linux kernel produces insufficiently random numbers, which allows attackers to...

Debian DSA-1929-1 : linux-2.6 - privilege escalation/denial of service/sensitive memory leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1883 Solar Designer discovered a missing capability...

Debian DSA-1928-1 : linux-2.6.24 - privilege escalation/denial of service/sensitive memory leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2846 Michael Buesch noticed a typing issue in the...

Debian DSA-1927-1 : linux-2.6 - privilege escalation/denial of service/sensitive memory leak

Notice: Debian 5.0.4, the next point release of Debian 'lenny', will include a new default value for the mmapminaddr tunable. This change will add an additional safeguard against a class of security vulnerabilities known as 'NULL pointer dereference' vulnerabilities, but it will need to be...

SLES10: Security update for Linux kernel

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: kernel-bigsmp kernel-debug kernel-default kernel-kdump kernel-smp kernel-source kernel-syms kernel-vmi kernel-vmipae kernel-xen kernel-xenpae More details ma...

Debian: Security Advisory (DSA-1927-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1927-1 [email protected] http://www.debian.org/security/ dann frazier November 5, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1928-1] New Linux 2.6.24 packages fix several vulnerabilities

---------------------------------------------------------------------- Debian Security Advisory DSA-1928-1 [email protected] http://www.debian.org/security/ Dann Frazier November 5, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...

[SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities

---------------------------------------------------------------------- Debian Security Advisory DSA-1927-1 [email protected] http://www.debian.org/security/ dann frazier November 5, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...

DSA-1929-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

DSA-1928-1 linux-2.6.24 - several vulnerabilities

Bulletin has no description...

DSA-1927-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : linux, linux-source-2.6.15 vulnerabilities (USN-852-1)

Solar Designer discovered that the z90crypt driver did not correctly check capabilities. A local attacker could exploit this to shut down the device, leading to a denial of service. Only affected Ubuntu 6.06. CVE-2009-1883 Michael Buesch discovered that the SGI GRU driver did not correctly check...

CVE-2009-3238

CVE-2009-3238 affects the Linux kernel (pre-2.6.30) where get_random_int in drivers/char/random.c produced insufficiently random numbers, enabling prediction of return values and potentially defeating defenses based on randomness. Several OS advisories (e.g., RHSA-2009:1438, ELSA-2009-1106/1438, ...